CVE-2002-2260
Mozilla Bugzilla - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the quips feature in Mozilla Bugzilla 2.10 through 2.17 allows remote attackers to inject arbitrary web script or HTML via the "show all quips" page.
References (5)
Scores
EPSS
0.0035
EPSS Percentile
57.2%
Classification
CWE
CWE-79
Status
draft
Affected Products (28)
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
mozilla/bugzilla
... and 13 more
Timeline
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026